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A method and apparatus are provided 
for compliance checking in a trust-management 
system. A request r, a policy assertion (/&, 
POLICY), and n-1 credential assertions (/i, si), 
(fn-i> Sn-\) are received, each credential 
assertion comprising a credential function fi and 
a credential source s\. Each assertion may be 
monotonic, authentic, and locally bounded. An 
acceptance record set S is initialized to {(A, 
A, /?)}, where A represents a distinguished null 
string, and R represents the request r. Each 
assertion (f h s\) f where i represents the integers 
from n-1 to 0, is run and the result is added 
to the acceptance record set S, This is repeated 
mn times, where m represents a number greater 
than 1, and an acceptance is output if any of the 
results in the acceptance record set S comprise 
an acceptance record (0, POLICY, /?). 
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METHOD AND APPARATUS FOR COMPLIANCE 
CHECKING IN A TRUST-MANAGEMENT SYSTEM 



CROSS REFERENCE TO RELATED APPLICATIONS 

The present application claims the benefit of U.S. provisional 
patent application Serial No. 60/074,848 entitled "Compliance 
1 0 Checking in the Policy Maker Trust Management System" to 

Matthew A. Blaze, Joan Feigenbaum and Martin J. Strauss and filed 
on February 17, 1998. 



FIELD OF THE INVENTION 

The invention relates to trust-management systems. More 
particularly, the invention relates to a method and apparatus for 
compliance checking in a trust-management system. 



20 COPYRIGHT NOTICE 

, A portion of the disclosure of this patent document contains 
material which is subject to copyright protection. The copyright 
owner has no objection to the facsimile reproduction by anyone of the 
25 patent document or patent disclosure as it appears in the Patent and 

Trademark Office patent file or records, but otherwise reserves all 
copyright rights whatsoever. 



BACKGROUND OF THE INVENTION 

Emerging electronic commerce services that use public-key 
cryptography on a mass-market scale require sophisticated 
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mechanisms for managing trust. For example, a service that receives 
a signed request for action may need to answer a basic question: "is 
the key used to sign this request authorized to take this action?" In 
some services, the question may be more complicated, requiring 
techniques for formulating security policies and security credentials, 
determining whether particular sets of credentials satisfy the relevant 
policies, and deferring trust to third parties. Matt Blaze, Joan 
Feigenbaum and Jack Lacy, "Decentralized Trust Management," 
Proc. IEEE Conference on Security and Privacy (May 1996) 
(hereinafter "Blaze, Feigenbaum and Lacy"), the entire contents of 
which is hereby incorporated by reference, discloses such a trust- 
management problem as a component of network services and 
describes a general tool for addressing it, the "PolicyMaker" trust- 
management system. 

As will be explained, the heart of the trust-management 
system is an algorithm for compliance checking. The inputs to the 
compliance checker are a "request," a "policy" and a set of 
"credentials." The compliance checker returns a "yes" (acceptance) 
or a "no" (rejection), depending on whether the credentials constitute 
a proof that the request complies with the policy. Thus, a central 
challenge in trust management is to find an appropriate notion of 
"proof and an efficient algorithm for checking proofs of compliance. 

Unfortunately, the compliance-checking problem may be 
mathematically undecidable in its most general form. Moreover, the 
compliance-checking problem is still non-deterministic polynomial 
time (NP) hard even when restricted in several natural ways. 

Blaze, Feigenbaum and Lacy discloses the trust-management 
problem as a distinct and important component of security in network 
services. Aspects of the trust-management problem include 
formulation of policies and credentials, deferral of trust to third 

1 
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parties, and a mechanism for "proving" that a request, supported by 
one or more credentials, complies with a policy. A comprehensive 
approach to trust management independent of the needs of any 
particular product or service is disclosed along with a trust- 
management system that embodies the approach. 

In particular, the PolicyMaker system comprises policies, 
credentials, and trust relationships that are expressed as functions or 
programs (or parts of programs) in a "safe" programming language. 
A common language for policies, credentials, and relationships makes 
it possible for applications to handle security in a comprehensive, 
consistent, and largely transparent manner. 

The PolicyMaker system is also expressive enough to support 
the complex trust relationships that can occur in large-scale network 
applications. At the same time, simple and standard policies, 
credentials, and relationships can be expressed succinctly and 
comprehensibly. 

The Policy Maker system provides local control of trust 
relationships. Each party in the network can decide in each 
transaction whether to accept the credential presented by a second 
party or, alternatively, which third party it should ask for additional 
credentials. Local control of trust relationships, as opposed to a top- 
down centralized approach, eliminates the need for the assumption of 
a globally known, monolithic hierarchy of "certifying authorities." 
Such hierarchies do not scale easily beyond single "communities of 
interest" in which trust can be defined unconditionally from the top 
down. 

The PolicyMaker mechanism for checking that a set of 
credentials proves that a requested action complies with local policy 
does not depend on the semantics of the application-specific request, 
credentials or policy. This allows different applications with varying 

*> 
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policy requirements to share a credential base and a trust- 
management infrastructure. 

Three examples of application-specific requests, and local 
policies with which they may need to comply, will now be described. 
5 Although individually the examples are of limited complexity, 

collectively they demonstrate that an expressive, flexible notion of 
"proof of compliance" is needed. 

As a first example, consider an e-mail system in which 
messages arrive with headers that include, among other things, the 

10 sender's name, the sender's public key, and a digital signature. When 

a recipient's e-mail reader processes an incoming message, it uses the 
public key to verify that the message and the signature go together 
(i.e., an adversary has not spliced a signature from another message 
onto this message). The recipient may also be concerned about 

15 whether the name and public key go together. In other words, could 

an adversary have taken a legitimate message-signature pair that he 
produced with this own signing key and then attached to it his public 
key and someone else's name? To address this concern, the recipient 
needs a policy that determines which name-key pairs are trustworthy. 

20 Because signed messages may regularly arrive from senders that he 

has never met, a simple private database of name-key pairs may not 
be sufficient. By way of example, a plausible policy might include 
the following: 

(1) He maintains private copies of the name-key pairs (A^, 
25 PK X ) and (N 2 , PK 2 ). A reasonable interpretation of this part of the 

policy is that he knows the people named N } and N 2 personally and 
can get reliable copies of the public keys directly from them. 

(2) He accepts "chains of trust" of length one or two. An arc 
in a chain of trust is a "certificate" of the form (PK h (Np PKj), 5). 

30 This is interpreted to means that the owner N ( of PK t vouches for the 
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binding between the name Nj and the public key PKj. This can also 
mean that N ( attests that Nj is trusted to provide certificates of this 
form. The party Nj signs (Np PKj) with his private key and the 
resulting signature S. 

(3) He insists that there be two disjoint chains of trust from 
the keys that he maintains privately to the name-key pair that arrives 
with a signed message. 

As a second example, consider a loan request submitted to an 
electronic banking system. Such a request might contain, among 
other things, the name of the requester and the amount requested. A 
plausible policy for approval of such loans might take the following 
form: 

(1) Two approvals are needed from loans of less than $5,000. 
Three approvals are needed for loans of between $5,000 and $10,000. 
Loans of more than $10,000 are not handled by this automated loan- 
processing system. 

(2) The head of the loan division must authorize approvers' 
public keys. The division head's public key is currently PK 3 . This 
key expires on December 3 1 , 1998. 

As a third example, consider a typical request for action in a 
web-browsing system, such as "view URL 
http://www.research.att.com/." In constructing a viewing policy, a 
user may decide what type of metadata, or labels, she wants 
documents to have before viewing them, and whom she trusts to label 
documents. The user may insist that documents be rated (S z 2, L z 
2, V- 0, N <> 2) on the sex (5), language (I), violence (V) and nudity 
(AO scales, respectively. She may trust self-labeling by some 
companies or any labels approved by certain companies. 

Previous work on "protection systems" is loosely related to 
the concept of a trust-management system. Recent work that is 

5 
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similarly related to the present invention can be found in, for 
example, T. Y. C. Woo and S. S. Lam, "Authorization in distributed 
Systems: A New Approach," Journal of Computer Security 2 pp. 107- 
36 (1993). In addition, protection systems, as described by D. 
5 Denning, Cryptography and Data Security . Addison- Wesley, Reading 

(1 982), address a similar, but not identical, problem. 

M. A. Harrison, W. L. Ruzzo and J. D. Ullman, "Protection in 
Operating Systems," Communications of the ACM 19, pp. 461-71 
(1 976) analyze a general protection system based on the "access 

1 0 matrix" model. In matrix A, indexed by subjects and objects, cell A so 

records the rights of subject S over the object o\ a set of transition 
rules describes the rights needed as preconditions to modify A and the 
specific ways in which A can be modified, by creating subjects and 
objects or by entering or deleting rights at a single cell. Harrison et 

1 5 al. showed that given (1) an initial state A 0 ; (2) a set A of transition 

rules and (3) a right r, it is undecidable whether some sequence 5 

0 

... 8. e A transforms A 0 such that d enters r into a cell not 
previously containing r, i.e., whether it is possible for some subject, 
not having right r over some object, ever to gain that right. On the 
20 other hand, Harrison et al. identify several possible restrictions on A 

and give decision algorithms for input subject to one of these 
restrictions. One restriction they consider yields a PSPACE-complete 
problem. 

Independently, A. K. Jones, R. J. Lipton and L. Snyder, "A 
25 Linear Time Algorithm for Deciding Security, Proceedings of the 

Symposium on Foundations of Computer Science," f EEE Computer 
Society Press . Los Alamitos, pp. 33-41 (1976) define and analyze 
"take-grant" directed-graph systems. Subjects and objects are nodes; 
an arc a from node n x to n 2 is labeled by the set of rights n } has over 
30 w 2 . If subject n x has the "take" right over « 2 , and n 2 has some right r 
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over w 3 , then a legal transition is for n x to take right r over w 3 . 
Similarly, if the subject n x has the "grant" right over n 2 , and w, has 
some right r over « 3 , then a legal transaction is for n j to grant right r 
over « 3 to « 2 - Besides these transitions, subjects can create new 
nodes and remove their own rights over their immediate successors. 
Although rights are constrained to flow only via take-grant paths, 
take-grant systems do model non trivial applications. 

Jones et al. asked whether a right r over a node x possessed by 
n u but not possessed by n 2 , could ever be acquired by w 2 . They 
showed that this question can be decided in time linear in the original 
graph by depth-first search. Thus, Denning concludes that although 
safety in protection systems is usually undecidable, the results in, for 
example, Jones et al. demonstrate that safety can be decided feasibly 

L 

in systems with sets of transition rules from a restricted though non- 
trivial set. The related results on compliance-checking described 
herein provide additional support for Denning 5 s conclusion. 

Having reviewed the basics of "protection systems," it can be 
seen why they address a similar but not identical problem to the one 
addressed by the compliance-checking algorithm described herein. In 
the protection system world, there is a relatively small set of 
potentially dangerous actions that could ever be performed, and this 
set is agreed upon in advance by all parties involved. A data 
structure, such as an access matrix, records which parties are allowed 
to take which actions. This data structure is pre-computed offline, 
and, as requests for action arrive, their legitimacy is decided via a 
lookup operation in this data structure. "Transition rules" that change 
the data structure are applied infrequently, and they are implemented 
by a different mechanism and in a separate system module from the 
ones that handle individual requests for action. 



7 
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In the trust-management system world, the set of potentially 
dangerous actions is large, dynamic, and not known in advance. A 
system provides a general notion of "proof of compliance" for use by 
diverse applications that require trust policies. The users of these 
applications and the semantics of their actions and policies are not 
even known to the compliance-checking algorithm; hence it is not 
possible for all parties to agree in advance on a domain of discourse 
for all potentially dangerous actions. The compliance-checking 
question "is request r authorized by policy P and credential set C?" is 
analogous to the question "can subject S eventually obtain right r by 
transition rules A" in the protection system world. However, a single 
instance of request processing, especially one that involves deferral of 
trust, can require a moderately complex computation and not just a 
lookup in a pre-computed data structure. Accordingly, an 
embodiment of the present invention formalizes the complexity of a 
general-purpose, working system for processing requests of this 
nature. In summary, a general purpose trust-management system is, 
very roughly speaking, a meta-system in the protection system 
framework. 

In addition, an application-independent notion of compliance 
checking can be useful and can enhance security. Any product or 
service that requires proof that a requested transaction complies with 
a policy could implement a special-purpose compliance checker from 
scratch. One important advantage of a general purpose compliance 
checker is the soundness and reliability of both the design and the 
implementation of the compliance checker. Formalizing the notion of 
"credentials proving that a request complies with a policy" involves 
subtlety and detail. It is easy to get wrong, and an application 
developer who sets out to implement something simple to avoid an 
"overly complicated" syntax of a general-purpose compliance checker 
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is likely to find that: ( 1 ) she has underestimated the complexity of the 
application's needs for expressiveness and proof or (2) her special- 
purpose compliance checker is not turning out so simple. 

A general-purpose notion of proof of compliance can be 
5 explained, formalized, proven correct, and implemented in a standard 

package, to free developers of individual applications from the need 
to reinvent the system. Applications that use a standard compliance 
checker can be assured that the answer returned for any given input 
(such as a request, a policy, and a set of credentials) depends on the 

10 input, and not on any implicit policy decisions (or bugs) in the design 

or implementation of the compliance checker. As policies and 
credentials become more diverse and complex, the issue of assuring 
correctness will become even more important, and modularity of 
function (with a clean separation between the role of the application 

1 5 and the role of the compliance checker) will make further 

development more manageable. 

Two important sources of complexity that are often 
underestimated are delegation and cryptography. Products and 
services that need a notion of "credential" almost always have some 

20 notion of "delegation" of the authority to issue credentials. The 

simplest case, unconditional delegation, is easily handled by a 
special-purpose mechanism. However, if the product or service 
grows in popularity and starts to be used in ways that were not 
foreseen when originally deployed, delegation can quickly become 

25 more complex, and a special-purpose language that restricts the types 

of conditional delegation that the service can use may become an 
impediment to widespread and imaginative use. 

The general framework for compliance checking avoids this 
by letting delegation be described by ordinary programs. Similarly, 

30 digital signatures and other browsers can be designed to 
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accommodate "safe surfing" policies configurable by parents, but 
may not initially involve cryptographic functions. If the application is 
subsequently integrated into the wider world of electronic commerce, 
however, cryptography may be desired and cryptographic credentials, 
5 such as public-key certificates, may need to be incorporated into the 

application's notion of proof of compliance. If the application 
already uses a general-purpose notion of proof of compliance, this 
can be done without having to rethink and re-code the compliance- 
checker. 

1 0 In addition, a general-purpose compliance checker can 

facilitate inter-operability. Requests, policies, and credentials, if 
originally written in the native language of a specific product or 
service, must be translated into a standard format understood by the 
compliance checker. Because a wide variety of applications will each 

15 have translators with the same target language, policies and 

credentials originally written for one application can be used by 
another. The fact that the compliance checker can serve as a locus of 
inter-operability may prove particularly useful in e-commerce 
applications and, more generally, in all setting in which public-key 

20 certificates are needed. 

Another possible problem with a compliance-checking 
algorithm is the possibility of self-referencing assertions. For 
example, a digitally signed assertion by party A might represent "I 
approve this request if, and only if, party B approves this request" 

25 while an assertion by party B represents "I approve this request if, and 

only if, party A approves this request." Although this request should 
perhaps be approved, a compliance-checking algorithm may not 
recognize this fact. 

In view of the foregoing, it can be appreciated that a 

30 substantial need exists for a method, solvable in polynomial time and 
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widely applicable, that checks the compliance of a request with a 
policy assertion based on credential assertions and solves the other 
problems discussed above. 

5 SUMMARY OF THE INVENTION 

The disadvantages of the art are alleviated to a great extent by 
a method and apparatus for compliance checking in a trust- 
management system. A request r, a policy assertion (f 0 , POLICY), 

10 and n - 1 credential assertions (f\,s x \ . . . , (f nm s„ m |) are received, 

each credential assertion comprising a credential function f { and a 
credential source Each assertion may be monotonic, authentic, and 
locally bounded. An acceptance record set S is initialized to a set of 
the triple {(A, A, /?)}, where A represents an empty portion of the 

1 5 acceptance record, and R represents the request r. Each assertion (/■, 

s t ) 9 where / represents the integers from n - 1 to 0, is run and the result 
is added to the acceptance record set S. This is repeated mn times, 
where m represents a number greater than 1 , and an acceptance is 
output if any of the results in the acceptance record set S comprise an 

20 acceptance record (0, POLICY, R). 

With these and other advantages and features of the invention 
that will become hereinafter apparent, the nature of the invention may 
be more clearly understood by reference to the following detailed 
description of the invention, the appended claims and to the several 

25 drawings attached herein. 
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BRIEF DESCRIPTION OF THE DRAWINGS 



FIG. 1 is a flow diagram of a method of compliance checking 
for a trust-management system according to an embodiment of the 
present invention. 

FIG. 2 is a block diagram of a compliance checker for a trust- 
management system according to an embodiment of the present 
invention. 

DETAILED DESCRIPTION 

The present invention is directed to a method and apparatus 
for compliance checking in a trust-management system. A general 
problem addressed by an embodiment of the present invention is 
Proof of Compliance (POC). The question is whether a "request" r 
complies with a "policy." The policy is simply a function^ encoded 
in a programming system or language and labeled by, for example, a 
keyword such as "POLICY." In addition to the request and the 
policy, a POC instance contains a set of "credentials," which also 
include general functions. Policies and credentials are collectively 
referred to as "assertions." 

Credentials are issued by "sources." Formally, a credential is 
a pair (/J, sj) of function f { and source identifier (ID) s i9 which may be 
a string over some appropriate alphabet JJ- Some examples of source 
IDs include public keys of credential issuers, URLs, names of people, 
and names of companies. In one embodiment of the present 
invention, with the exception of the keyword POLICY, the 
interpretation of source-IDs is part of the application-specific 
semantics of an assertion, and it is not the job of the compliance 
checker. From the compliance checker's point of view, the source- 

12 
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IDs are just strings, and the assertions encode a set of, possibly 
indirect and possibly conditional, trust relationships among the 
issuing sources. Associating each assertion with the correct source- 
ID is, according to this embodiment, the responsibility of the calling 
application and takes place before the POC instance is handed to the 
compliance checker. 

The request r may be a string encoding an "action" for which 
the calling application seeks a proof of compliance. In the course of 
deciding whether the credentials (f x , s } ), . . . , (f n m ,, s n . x ) constitute a 
proof that R complies with the policy (f 0 , POLICY), the compliance 
checker's domain of discourse may need to include other action 
strings., A request r may include, for example, a request to access or 
copy a data object, or to play a data object that contains, for example, 
audio content. 

For example, if POLICY requires that r be approved by 
credential issuers s x and s 2 , the credentials (/j, s x ) and (f 2 , s 2 ) may 
want a way to say that they approve r "conditionally," where the 
condition is that the other credential also approve it. A convenient 
way to formalize this is to use strings R, R x and R 2 over some finite 
alphabet £. The string R corresponds to the requested action r. The 
strings R { and R 2 encode conditional versions of R that might by 
approved by s { and s 2 as intermediate results of the compliance- 
checking procedure. 

More generally, for each request r and each assertion (f h s t ), 
there is a set {/?,-,} of "action strings" that might arise in a compliance 
check. By convention, there is a distinguished string R that 
corresponds to the input request r. The range of assertion (f h s t ) is 
made up of "acceptance records" of the form (/, s h Ry\ the meaning 
of which is that, based on the information at its disposal, assertion 
number /, issued by source s h approves action R^ A set of 

13 
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acceptance records is referred to as an "acceptance set." It is by 
maintaining acceptance sets and making them available to assertions 
that the compliance checker manages "inter-assertion 
communication," giving assertions the chance to make decisions 
based on conditional decisions by other assertions. The compliance 
checker starts with an "initial acceptance set" {(A, A, if)}, in which 
the one acceptance record means that the action string for which 
approval is sought is R and that no assertions have yet signed off on it 
or anything else. The checker runs the assertions 
(/o, POLICY), (/j , 5,), . . . , (f n . , , s n . i) that it has received as input, 
not necessarily in that order and not necessarily once each, to 
determine which acceptance records are produced. Ultimately, the 
compliance checker approves the request r if the acceptance record 
(0, POLICY, R), which means "policy approves the initial action 
string," is produced. Note that the use of the string "POLICY" herein 
is by way of example only, and any other information may of course 
be used instead. 

Thus, abstractly, an assertion is a mapping from acceptance 
sets to acceptance sets. Assertion (f l9 s{) looks at an acceptance set A 
encoding the actions that have been approved so far, and the numbers 
and sources of the assertions that approved them. Based on this 
information about what the sources it trusts have approved, (/■, s{) 
outputs another acceptance set A ' . 

The most general version of the compliance-checking 
problem, or "proof of compliance," is: given as input a request r and 
a set of assertions (f Q , POLICY), (f h s } ),..., (f n . u s n . ( ), is there a 
finite sequence i l9 / 2 , . . . , i t of indices such that each is in {0, 1, . . . 
, n - 1 }, but the /y's are not necessarily distinct and not necessarily 
exhaustive of {0, 1, . . . , n - 1 }, and such that: 
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(0, POLICY, R) 6 (/;, j,) o . . . o (f i9 s t ) ({(A, A, R)}) , 



where R is the action string that corresponds to the request r? 

This general version of the problem is mathematically 
undecidable. A compliance checker cannot even decide whether an 
arbitrary assertion (/-, sj) halts when given an arbitrary acceptance set 
5 as input, much less, whether some sequence containing (/?, s t ) 

produces the desired output. Therefore, various special cases of POC 
will now be described, including one that is both useful and 
computationally tractable. 

The statement "{(ft, POLICY), (/j, s x ), ...,(£ J„ . i» contains 
10 a proof that r complies with POLICY " means that (r, {(f 0 , POLICY), 

(f\> s{) 9 . . - , (f n . i, s n . m j)}) is a "yes-instance" of this unconstrained, 
most general form of POC. If Fis a, possibly proper, subset of {{f Q , 
POLICY), (/j, s x ) 9 i, s n . ,)} that contains all of the assertions 

that actually appear in the sequence (f , s.) ° . . . ° (f^ , then 
1 5 contains a proof that r complies with POLICY." 

In order to obtain a useful restricted version of POC, various 
pieces of information may be added to the problem instances. 
Specifically, the instance (r, {(f 0 , POLICY), (/j, s x ), . . . , (f n .\ 9 s nm 
j)}) may be augmented in one or more of the following ways. 

20 

Global Run T ime Bound 

An instance may contain an integer d such that a sequence of 
assertions (f ,s .) (f. , s. ) is considered a valid proof that r 

complies with POLICY if the total amount of time that the 
25 compliance checker needs to compute (f. ; , s l ) ° . . . ° 

{f. , s . ) ({(A, A, R)}) is 0{1^\ Here N is the length of the original 
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problem instance, i.e., the number of bits needed to encode r, (f 0 , 
POLICY), (/i, . . . , (£. ,, v ]), and din some standard fashion. 

Local Run Time Bound 

An instance may contain an integer c such that (f., s.) , . . . 
, (/". , s ) is considered a valid proof that R complies with POLICY 
if each (f. , s . ) runs in time OQf). Here N is the length of the 

7 7 

actual acceptance set that is input to (f. , s f ) when it is run by the 
compliance checker. Note that the length of the input fed to an 
individual assertion (/*. , s . ) in the course of checking a proof may 
be considerably bigger than the length of the original problem 
instance (r, {(fa POLICY), (f { , s { ), ...,(/;. {9 s n . j)}, c), because the 
running of assertions (f. , s. ) , . . . , (/*,,$,) may have caused 
the creation of many new acceptance records. 

Bounded Number of Assertions in a Proof 

An instance may contain an integer / such that (/) , s. ) 
, (f lt s.) is considered a valid proof if f ^ /. 

Bounded Output Set 

An instance may contain integers m and S such that an 
assertion (f h s t ) can be part of a valid proof that r complies with 
POLICY if there is a set O t = {R n , . . . , R im } of m action strings, such 
that (fj, Sj)(A) c O k for any input set A , and the maximum size of an 
acceptance record (/, s i9 Ry) is S. Intuitively, for any user-supplied 
request r, the meaningful "domain of discourse" for assertion (£, s t ) is 
of size at most m - there are at most m actions that it would make 
sense for (f n s t ) to sign off on, no matter what the other assertions in 
the instance say about r. 
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MoqQtQnicity 

Other variants of POC are obtained by restricting attention to 
instances in which the assertions have the following property: (f h s t ) 
is "monotonic" if, for all acceptance sets A and B,A<zB=*(f h s t )(A) 
c (ft, Si)(B). Thus, if (/J, Sj) approves action Ry when given a certain 
set of "evidence" that 7?,- is ok, it will also approve when given a 
super-set of that evidence - it does not have a notion of "negative 
evidence." 

Any of the parameters /, m, and S that are present in a 
particular instance may be written in unary so that they play an 
analogous role to w, the number of assertions, in the 
calculation of the total size of the instance. The parameters d and c 
are exponents in a run time bound and hence may be written in 
binary. 

Any subset of the parameters d, c, /, m, and S may be present 
in a POC instance, and each subset defines a POC variant. Including 
a global run time bound d makes the POC problem decidable, as does 
including parameters c and /. 

In stating and proving results about the complexity of POC, 
the notion of a "promise problem," as discussed in S. Even, A. 
Selman and Y. Yacobi, the "Complexity of Promise Problems with 
Applications to Public-Key Cryptography," Information and Control 
61, pp. 159-174 (1984), may be used. In a standard decision problem, 
a language L is defined by a predicate R in that xel« R(x). In a 
promise problem, there are two predicates, the promise Q and the 
property R. A machine M solves the promise problem (Q, R) if, for 
all inputs for which the promise holds, the machine M halts and 
accepts x if and only if the property holds. Formally, Vx[0(x) =» [M 
halts on x and M(x) accepts ~ R(x)]]. Note that ATs behavior is 
unconstrained on inputs that do not satisfy the promise, and each set 
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of choices for the behavior of Mon these inputs determines a 
different solution. Thus, predicates Q and R define a family of 
languages, namely all L such that L = L(M) for some Mthat solves 

The class NPP consists of all promise problems with at least 
one solution in NP. A promise problem is NP-hard if it has at least 
one solution and all of its solutions are NP-hard. To prove that a 
promise problem (Q, R) is NP-hard, it suffices to start with an 
NP-hard language L and construct a reduction whose target instances 
all satisfy the promise Q and satisfy the property R if and only if they 
are images of strings in £. 

The following are POC variants that can be shown to be NP- 
hard, which is generally interpreted to mean that they are 
computationally intractable in the worst case. 

Locally Bounded Proof of Compliance fLBPOQ 

In this case, the "input" is a request r, a set {(f 0 , POLICY), (/J, 
s \)> - • • » (f n - 1> - 1)} °f assertions, and integers c, /, m, and S. The 
"promise" is that each (/-, sj) runs in time On any input set 

that contains (A, A, R\ where R is the action string corresponding to 
request r, for each (/J, s s ) there is a set O i of at most m action strings 
such that (f h Sj) only produces output from O h and S is the maximum 
size of an acceptance record (/, s i9 /?,y), where Rg e 0,-. Finally, the 
"question" can be stated as follows: is there a sequence i l9 . . . , /, of 
indices such that: 

1 . Each ij is in {0, 1, . . . , n - 1 }, but the ij need not be distinct 
or collectively exhaustive of {0, 1, . . . ? n - 1 } ; 

2. t <> I ; and 

3. (0, POLICY, R) e (/;,*,.) 0...0 (f s ) ({(A, A, 
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Globally Bounded Proof of Compliance (GBPOQ 

In this case, the "input" is a request r, a set {(/q, POLICY), (f {9 
s \)> - • • » (f n - \> s n - 1)} °f assertions, and an integer d. The "question"' 
can be stated as follows: is there a sequence i l9 . . . , i t of indices such 
5 that: 

1 . Each ij is in {0, 1, 1 }, but the ij need not be distinct 
or collectively exhaustive of {0, 1, . . . , n - 1 }; 

2. (0, POLICY,*) e (/;,,,) 0...0 (/:, j ) ({(A, A, 
/?)}), where 7? is the action string corresponding to request r, and; 

10 3. The computation of (f n s.) <> . ; . o (/;,*.) ({(A, A, 

R)}) runs in total time 0(A^)? 

Monotonic Proof of Compliance (MPOQ 

In this case, the "input" is a request r, a set {(f 0 , POLICY), (/j, 
15 5j), . . . , (f n , j, s„ . j)} of assertions, and integers / and c. The 

"promise" is that each assertion (f i9 s t ) is monotonic and runs in time 
0(N°). The "question" can be stated as follows: is there a sequence 
i u . . . , /, of indices such that: 

1 . Each ij is in {0, 1, 1 }, but the ij need not be 
20 distinct or collectively exhaustive of {0, 1 , . . . , n - 1 } ; 

2. / <; / ; and 

3. (0, POLICY, R) 6 (/;,*,.) 0...0 (f ,) ({(A, A, 
/?)}), where R is the action string corresponding to request r? 

Each version of POC may be defined using "agglomeration" 
25 (f 2 , s 2 ) * (/j, $i) instead of composition (f 2 , s 2 ) ° (/J, ^i). The result of 

applying the sequence of assertions (f., s .),... , (/! , O 
agglomeratively to an acceptance set S 0 is defined inductively as 
follows: S x = (/;„ j^X^o) u s o ^ for 2 z i z t 9 Sj = (f 9 j ) (S y _,) u 
iSy.j . Thus, for any acceptance set A, A c (f r s f ) * . . . * 
30 (f , s .) (A). The agglomerative versions of the decision problems 
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are identical to the versions already given, except that the acceptance 
condition is "(0, POLICY, R) e (f n s,) ★ . . . ★ (/* , s. ) ({(A, 

V 'i 'I '| 

A, R)})*?" As used herein, "agglomerative POC," "agglomerative 
MPOC," etc., refer to the version defined in terms of * instead of °. 
5 A trust-management system that defines "proof of 

compliance" in terms of agglomeration can make it impossible for an 
assertion to "undo" an approval that it (or any other assertion) has 
already given to an action string during the course of constructing a 
proof. This definition of proof may make sense if the 

1 0 trust-management system should guard against a rogue 

credential-issuer's ability to thwart legitimate proofs. Note that the 
question of whether the compliance checker combines assertions 
using agglomeration or composition is separate from the question of 
whether the assertions themselves are monotonic. 

15 A compliance-checking algorithm according to a preferred 

embodiment of the present invention will now be described. A 
specific case of a POC problem associated with this embodiment will 
be explained. The promise that defines this special case includes 
some conditions that have already been discussed, namely 

20 monotonicity and bounds on the run time of assertions and on the 

total size of acceptance sets that assertions can produce. According 
to one embodiment of the present invention, however, another 
condition is considered, called "authenticity," which could be ignored 
when proving hardness results. An authentic assertion (/J, sj) 

25 produces acceptance records of the form (/, s i9 R^). That is, it does 

not "impersonate" another assertion by producing an acceptance 
record of the form (/', s r , R^), for i 'not equal to /, or si 'not equal to 
si. 

An embodiment of the present invention constructs proofs in 
30 an agglomerative fashion, and hence * is used in the following 
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problem statement. Note that a variant of POC could be defined 
using ° as well. 



Locally Bounded, Monotonic. and Authentic Proof of Compliance 
(I3MAP0C): 

According to this embodiment of the present invention, the 
"input is a request r, a set {(f Q , POLICY), (/j, s x ), . . . , (f n . } ,s n . ,)} of 
assertions, and integers c, m, and 5. The "promise" is that each (/■, s t ) 
is monotonic, authentic, and runs in time 0(N°). On any input set 
that contains (A, A, R), where R is the action string corresponding to 
request r, for each (/■, sj) there is a set O x of at most m action strings 
such that (/), si) produces output from 0 f . Moreover, S is the 
maximum size of an acceptance record (/, s h R^ such that R t j e O r 
Finally, the "question" can be stated as follows: is there a sequence / j, 
. . . , i ( of indices such that each ij is in {0, 1, . . . , n - 1 }, but the ij 
need not be distinct or collectively exhaustive of {0, 1, 1 }, 
and (0, POLICY, R)<= (f g9 s.) * . . . ★ (f., s.) ({(A, A, *)})? 

Referring now in detail to the drawings wherein like parts are 
designated by like reference numerals throughout, there is illustrated 
in FIG. 1 a flow diagram of a method of compliance checking for a 
trust-management system according to an embodiment of the present 
invention. The flow chart in FIG. 1 is not meant to imply a fixed 
order to the steps; embodiments of the present invention can be 
practiced in any order that is practicable. At step 1 10, a request r, a 
policy assertion (f 0 , POLICY) associated with the request r, and n - 1 
credential assertions (/j, s } ), . . . , (f n _ s n m j) are received, each 
credential assertion comprising a credential function f { and a 
credential source s r In addition, an acceptance record set S is 
initialized to {(A, A, R)} at step 110, where A represents a 
distinguished "null string" and R represents the inital request, r. 
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At step 120,y is initialized to 1 . At step 130 each assertion (f h 
Sj)> for integers / from 0 to n - 1 , is run and the result is added to the 
acceptance record set S. If j does not equal mn at step 140, where m 
is a number greater than 1 J is increased by 1 at step 150 and step 130 
5 is repeated. 

If j does equal mn at step 140, it is determined if acceptance 
set S contains an acceptance record, such as (0, POLICY, R), at step 
160. If not, a rejection is output at step 170. If acceptance set S does 
contain the acceptance record, an acceptance is output at step 180. 
10 The following pseudo-code demonstrates the algorithm 

according to one embodiment of the present invention, referred to 
herein as the "Compliance-Checking Algorithm version 1" (CCA!): 

CCA,(r, {(/o, POLICY), ft, s x ) 9 ...,(£.„ s n _ ,)}, m): 

{ 

15 SM(A,A,*)} 

/-{> 

For j <- 1 to mn 

{ 

For i*-n- 1 to 0 
20 { 

Iftf, Then S'-fos^CS) 
If IllFormed((/;, $,)), Then / W 

u {(/;,*,-)}, Else S-SuS' 

} 

25 } 

If (0, POLICY, R) e S, Then Output(Accept), 

Else Output(Reject) 
} 

3 0 Note that an assertion (/J, s t ) is "ill-formed" if it violates the 

promise. If CCAj discovers that (/J, si) is ill-formed, the assertion is 
ignored for the remainder of the computation. An assertion (/J, s,) 
may be undetectably ill-formed. For example, there may be sets A c 
B such that (/•, si)(A) £ if { , si)(B), but such that A and B do not arise in 

35 this run of the compliance checker. The CCA, algorithm may check 
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for violations of the promise every time it simulates an assertion. 
Detailed pseudo-code for these checks is not included in CCA,, 
because it would not illustrate the basic structure of the algorithm. 
Instead, the predicate IllFormed ( ) indicates that the checks may done 
5 for each simulation. 

Like the non-deterministic algorithms discussed above, CCA, 
accepts if and only if the acceptance record (0, POLICY, R) is 
produced when it simulates the input assertions. Unlike the previous 
algorithms, however, it cannot non-deterministically guess an order in 

10 which to do the simulation. Instead, it uses an arbitrary order. CCA! 

also ensures that, if a proper subset F of the input assertions contains 
a proof that R complies with POLICY and every (f i9 s t ) e F satisfies 
the promise, then the remaining assertions do not destroy all or part of 
the acceptance records produced by F during the simulation (and 

15 destroy the proof), even if these remaining assertions do not satisfy 

the promise. CCA, achieves this by maintaining one set of approved 
acceptance records, from which no records are ever deleted, i.e., by 
agglomerating, and by discarding assertions that it discovers are 
ill-formed. 

20 Note that CCA, does mn iterations of the sequence (f n .\,s n - 

,),..., (/I, s,), (/q, POLICY), for a total of mn 2 assertion-simulations. 
Recall that a set F= { (f. , s. ) , . . . , (f n s.) } q {(f 0 , POLICY), . 
. . , (f n . s n _ ,)} "contains a proof that r complies with POLICY" if 
there is some sequence k l9 ... 9 k u of the indices;",, . . . J p not 

25 necessarily distinct and not necessarily exhaustive of/ t , . . . J 0 such 

that (0, POLICY, R)e (f. 9 s k ) ★ . . . ★ if k , s k ) ({(A, A, R)}). 

Let (r, {(/b, POLICY), (/"„ 5,), . . . , (/" n . „ s n . ,)}, c, m,s) be an 
agglomerative LBMAPOC instance. As a result: 

1 . Suppose that F c {(/" 0 , POLICY), (/"„ 5,), . . . , (f n . „ s n . ,)} 

30 contains a proof that R complies with POLICY and that every (/J, j ; )e 
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F satisfies the promise of LBMAPOC. Then CCA, accepts (r, {Oo, 
POLICY), (/j, j,), . . . , (f a . „ s n _ ,)}, c, m, s) . 

2. If {(/o, POLICY), (/i, 5,), ...,(/„.„ 5 n . ,)} does not 
contain a proof that complies with POLICY, then CCA, rejects (r, 

5 {{f 0 .?OUCY) t {f lt s l ) t ...,(f n . lt s n .i)hc t m,s). 

3. CCAj runs in time 0(mn (nms) c ). 

The only non trivial claim above is (1). Let 7 r = { (f J9 ^) , . 
• • > (/"•.*■) } be a set that satisfies the hypothesis of ( I ). Each 
assertion in Fis monotonic, and, as CCA! runs assertions 

1 0 agglomerati veiy, it never deletes acceptance records that have already 

been produced but rather just adds new ones. Therefore, it may be 
assumed without loss of generality that F contains all of the 
well-formed assertions in {{f 0 , POLICY), (/j , s x \ ...,(/„. i > s n - 1)} • 
Let k }J ...,£ tt be a sequence of indices, each in {/j, . . . J t } 9 

1 5 but not necessarily distinct 

and not necessarily exhaustive of . . . J t ), such that (0, POLICY, 

R)e (fir > s \) * • ■ • * (f k > * k ) (tt A > A > *)»• Assume without 
loss of generality that no sequence of length less than u has this 
property. Let^j, . . . , A u be the acceptance sets produced by applying 

20 (f 9 s k ) , . . . , (f k , s k ) . Because k x , . . . , k u is a shortest 

sequence that proves compliance using assertions in F, each set A p 
must contain at least one action string that is not present in any of A {9 
. . . , A p , v Thus, u iterations of (f Q , POLICY) ★ (/*„ s x ) ★ ...★(£ . j, 
s n . j) would suffice for CCA], At some point in the first iteration 

25 (f. , s. ) would be run, and because CCAi adds but never deletes 

acceptance records, A x or some super-set of A x would be produced. 
At some point during the second iteration, (f. , s. ) would be run, 
and because A x would be contained in its input, A 2 or some superset 
of A 2 would be produced. 
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Each (f J9 s.) e F satisfies the local boundedness promise, 
producing at most m distinct action strings in any computation that 
begins with {(A, A, R)} 7 regardless of the behavior of other (even 
ill-formed) assertions. Because \F\ = / <, n, at most mn distinct action 
5 strings can be produced by assertions in F, and at most mn sets A p can 

be produced if each is to contain a record that is not contained in any 
earlier set. Thus, u <. mn, and mn iterations of (f 0 , POLICY) * (/j, Sj) 

*-.-*(/n-i><Vi) suffice. 

Note that cases (1) and (2) do not cover all possible inputs to 

10 CCA j. There may be a subset F of the input assertions that does 

contain a proof that r complies with POLICY but that contains one or 
more ill-formed assertions. If CCA, does not detect that any of these 
assertions is ill- formed, because their ill-formedness is exhibited on 
acceptance sets that do not occur in this computation, then CCA, will 

1 5 accept the input. If it does detect ill-formedness, then, as 

specified here, CCA, may or may not accept the input, perhaps 
depending on whether the record (0, POLICY, R) has already been 
produced at the time of detection. According to another embodiment 
of the present invention, CCA, is modified to restart whenever 

20 ill-formedness is detected, after discarding the ill-formed assertion so 

that it is not used in the new computation. The point is simply that 
CCA, should not be given a policy that trusts, directly or indirectly, a 
source of ill-formed assertions. Therefore, the policy author should 
know which sources to trust, and modify the policy if a trusted source 

25 issues ill-formed assertions. 

FIG. 2 is a block diagram of a compliance checker for a trust- 
management system according to an embodiment of the present 
invention. An application 210 running on a user device 200 sends a 
request r to a trust management platform input port 410 through a 

30 communication network 300 such as, for example: a Local Area 
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Network (LAN), the Public Switched Telephone Network (PSTN), an 
intranet, an extranet or the Internet. A compliance-checking unit 450 
coupled to the input port 410 receives the request along with a policy 
assertion (f 0 , POLICY) associated with the request and n - 1 
5 credential assertions (f l5 Sj), ...,(f n .,,s n .,), each credential 

assertion including a credential function fj and a credential source s v 
Note that the input port 410 may be a single physical input port, or 
several different input ports that may in turn be coupled to different 
networks or other devices. That is, the request, policy and credentials 

10 may not come from the same source or through the same channel. 

The input port 410 is coupled to a compliance-checking unit 
450, which may comprise, for example, the following (not shown in 
FIG. 2): a processing module with a Central Processing Unit (CPU); 
"memories" comprising a Random Access Memory (RAM) and a 

15 Read Only Memory (ROM); and a storage device. The memories and 

the storage device may store instructions adapted to be executed by 
the CPU to perform at least one embodiment of the method of the 
present invention. For the purposes of this application, the memories 
and storage device could include any medium capable of storing 

20 information and instructions adapted to be executed by a processor. 

Some examples of such media include, but are not limited to, floppy 
disks, CD-ROM, magnetic tape, hard drives, and any other device 
that can store digital information. In one embodiment, instructions 
are stored on the medium in a compressed and/or encrypted format. 

25 As used herein, the phrase "adapted to be executed by a processor" is 

meant to encompass instructions stored in a compressed and/or 
encrypted format, as well as instructions that have to be compiled or 
installed by an installer before being executed by the processor. 

The compliance-checking unit 450 initializes an acceptance 

30 record set S to {(A, A, /?)}, where A represents a distinguished null 
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string and R represents the request r. The compliance-checking unit 
450 runs assertion (/J, s s ) for integers / from 0 to n - 1 and adds the 
result of each assertion (/•, to the acceptance record set S. This 
process is repeated mn times, where m represents a number greater 
5 than 1 . The compliance-checking unit 450 may output an 

"acceptance," such as through port 410, or some other 
communication port, if any of the results in the acceptance record set 
S comprise an acceptance record (0, POLICY, R). The compliance- 
checking unit 450 may instead, according to another embodiment of 

10 the present invention, perform the action R itself. 

Thus, according to one embodiment of the present invention, 
the Policy Maker system uses a notion of "proof that a request 
complies with a policy" that is amenable to definition and analysis. 
The choice of this notion of proof, however, is a subjective one and 

1 5 other notions of proof may also be used. 

In deciding how a set of executable assertions can cooperate 
to produce a proof, a mechanism for "inter-assertion communication" 
of intermediate results may be used. For simplicity, assertions may 
communicate by outputting acceptance records that are input to other 

20 assertions. More sophisticated interactions, such as allowing 

assertions to call each other as subroutines, might be useful but may 
require a more complex execution environment. A trade-off might 
therefore exist between the cost of building and analyzing such an 
execution environment and the potential power to be gained by using 

25 more sophisticated interactions to construct proofs of compliance. 

The choice of a simple communication mechanism implies 
that a part of constructing a proof of compliance is choosing an order 
in which to execute assertions. According to an embodiment of the 
present invention, the responsibility of choosing this order rests with 

30 the compliance checker and not, for example, the calling application. 
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Although the compliance checker's job could be made easier by 
requiring the calling application to give it the correct order as an 
input, such a requirement may not be consistent with the system's 
overall goals. For example, applications may need to use credentials 
5 issued by diverse and far-flung sources without having to make 

assumptions about the order in which these credentials communicate 
via acceptance records. In an extreme case, the issuing sources may 
not be aware of each others' existence, and no such assumptions by 
the calling application would be valid. Although the most general 

1 0 version of the POC problem allows assertions to be arbitrary 

functions, the computationally tractable version may only be correct 
when all assertions are monotonic. 

In particular, according to one embodiment of the present 
invention, monotonic policy assertions may produce a correct result, 

1 5 and this excludes certain types of policies that are used in practice, 

including those that use "negative credentials" such as revocation 
lists. Despite this restriction, the monotonicity requirement has 
certain advantages. Although the compliance checker may not handle 
all potentially desirable policies, it is at least analyzable and provably 

20 correct on a well-defined class of policies. Furthermore, the 

requirements of many non-monotonic policies can often be achieved 
by monotonic policies. For example, instead of requiring that an 
entity not appear on a revocation list, the system may require a 
"certificate of non-revocation." The choice between these two 

25 approaches involves trade-offs among the (system-wide) costs of the 

two kinds of credentials and the benefits of a standard compliance 
checker with provable properties. Moreover, restriction to monotonic 
assertions encourages a conservative, prudent approach to security. 
In order to perform a potentially dangerous action, a user must 

30 present an adequate set of affirmative credentials. Potentially 
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dangerous action are not allowed "by default," simply because of the 
absence of negative credentials. 

According to an embodiment of the present invention, the 
POC problem has been formulated in a way that allows assertions to 
5 be as expressive as possible. As a result, well-formedness promises 

such as monotonicity and boundedness, while formal and precise, 
may not be verified. Each assertion that conditionally trusts an 
assertion source for application-specific expertise (such as suitability 
for a loan) must also trust that source to write bounded and 
1 o monotonic assertions and to trust other similar sources of assertions. 

The resulting notion of soundness is that if there is no proof from a 
set of trusted, well-formed assertions, then CCAj will not accept the 
input. 

Full expressiveness, however, is just one goal of a trust- 
15 management system. Another 

goal is the clear separation of the trust relationships of assertions 
from programming details. 

To some extent, these goals are at odds — the compliance checker may 
not perform verifications on fully general programs, and thus an 

20 assertion writer may need to worry about some programming details. 

Note that monotonic assertions may actually be written as, for 
example, AND-OR circuits and bounded assertions may actually 
"declare" the finite set from which they will produce output. A 
compliance-checking algorithm could then easily detect the 

25 ill-formed assertions and discard them. This would free assertion 

writers of the burden of deciding when another writer is trusted to 
write bounded and monotonic code, just as requiring assertions to be 
written in a safe (and therefore restricted) language frees the assertion 
writer from worrying about certain application-independent 

30 programming details. This verifiability comes at a price: listing a 
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finite output set is relatively inexpensive, but there are monotonia 
functions that require exponentially bigger circuits to express over a 
basis of AND and OR than they require over a basis of AND, OR, 
and NOT. See, E. Tardos, "The Gap Between Monotone and Non- 
monotone Circuit Complexity is Exponential," Combinatorica 8, pp. 
141-142 (1988). In some applications it may be cheaper, on average, 
to write assertions that are verifiably bounded and monotonic than to 
determine the set of sources trusted (even indirectly) by a given 
assertion and to judge whether they are trusted to be monotonic and 
bounded. 

According to another embodiment of the present invention, 
the compliance checker makes the original code of an assertion that 
produced a record available to other assertions reading that 
acceptance record. A conservative policy then, before trusting 
assertions (/",, s { ) and (f 2 , s 2 ), could require and check that /,. and^ be 
verifiably monotonic and bounded and that f x and^ each include 
specific standard code to check all assertions whose acceptance 
records (/j, s x ) and (f 2 , s 2 ) wish to trust. A complex monotonic 
assertion that needs to be written compactly using NOT gates can, if 
desired, still be used with the modified compliance algorithm. 

Although various embodiments are specifically illustrated and 
described herein, it will be appreciated that modifications and 
variations of the present invention are covered by the above teachings 
and within the purview of the appended claims without departing 
from the spirit and intended scope of the invention. For example, 
although specific pseudo-code was used to describe one embodiment 
of the present invention, it will be understood that other compliance- 
checking algorithms will also fall within the scope of the invention. 
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What is claimed is : 



1 1 . A method of compliance checking in a trust-management 

2 system, comprising: 

3 a) receiving a request r, a policy assertion (f 0 , POLICY) 

4 associated with the request r, and n - 1 credential assertions (/i, Sj), . . 

5 . , (f n . l3 s n . ,), each credential assertion comprising a credential 

6 function f x and a credential source 

7 b) initializing an acceptance record set S to {(A, A, R)} , where 

8 A represents an empty portion of the acceptance record set S, and R 

9 represents the request r; 

I o c) running assertion (/J, sj) on the acceptance set S for each 

I I integer / from n - 1 to 0 and adding the result of each assertion (f h sj) 

12 to the acceptance record set S; 

13 d) repeating step (c) mn times, where m represents a number 

1 4 greater than 1 ; and 

1 5 e) determining if the acceptance record set S includes (0, 

16 POLICY, R). 

1 2. The method of claim 1, further comprising: 

2 f) determining whether an assertion (/J, sj) is ill-formed; 

3 wherein step (c) is only performed for assertions (/•, sj) that 

4 are not ill-formed. 

1 3. The method of claim 2, further comprising: 

2 g) initializing a set / to an empty set; and 

3 h) adding any ill-formed assertions (f h sj) to set /. 

1 4. The method of claim 1 , wherein a request r is a request to 

2 access a data object. 
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1 5. The method of claim 1 , wherein a request r is a request to 

2 make a copy of a data object. 

1 6. The method of claim 1 , wherein a request r is a request to 

2 play a data object that includes audio content. 

1 7. The method of claim 1 , wherein a credential function 

2 includes a subject, an action, and an object. 

1 8. The method of claim 1 , wherein the request r is a string 

2 encoding an action for which a calling application seeks a proof of 

3 compliance. 

1 9. The method of claim 1, wherein R represents an action 

2 string corresponding with the request r. 

1 10. The method of claim 9, wherein the action string R 

2 includes a subject, an action and an object. 

1 11. The method of claim 1 , wherein a credential assertion 

2 includes one of a public key, a uniform resource locator and a name. 

1 12. The method of claim 1 , wherein credential function f x is 

2 correlated with a credential source s x by cryptographically signing the 

3 credential function f { with a private cryptographic key belonging to 

4 credential source s v 

1 13. The method of claim 1 , wherein each assertion is 

2 monotonic, authentic, and locally bounded. 
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1 14. A method of compliance checking in a trust-management 

2 system, comprising: 

3 a) receiving a request; 

4 b) receiving a policy associated with the request; 

5 c) receiving a number of credentials, the policies and 

6 credentials comprising a number of monotonic, authentic, and locally 

7 bounded assertions; and 

8 d) deciding whether the credentials prove that the request 

9 complies with the policy. 

1 1 5. The method of claim 14, wherein a monotonic assertion 

2 approves an action when provided with a set of evidence if the 

3 assertion would approve the action when provided with a subset of 

4 that evidence. 

1 16. The method of claim 14, wherein an authentic assertion 

2 produces acceptance records that do not impersonate another 

3 assertion. 

1 17. The method of claim 14, wherein a locally bounded 

2 assertion is bounded in terms of a maximum runtime and a maximum 

3 size of acceptance sets that can be produced. 

1 18. The method of claim 14, wherein the policy comprises a 

2 function^ encoded in a programming system 

1 1 9. A method of compliance checking in a trust-management 

2 system, comprising: 

3 receiving (i) a request r to perform an action R and (ii) 

4 assertions (/" 0 , POLICY), (/j, s,), . . . , {f n . ,, s„ . ]); 
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5 executing, mn times, assertion {f h s,) for each integer / from n 

6 - 1 to 0, the execution being performed using any information 

7 generated by previously executed assertions, m representing a number 

8 greater than 1 ; and 

9 determining if (0, POLICY, R) has been generated. 

1 20. An apparatus for compliance checking in a trust- 

2 management system, comprising: 

3 a processor; and 

4 a memory storing instructions adapted to be executed by said 

5 processor to receive a request R to perform an action and assertions 

6 Oo, POLICY), (/j, s x % ...,(£,_!, s n . !>, initialize an acceptance record 

7 set S to {(A, A, R)} , where A represents a distinguished null string, 

8 iteratively run, mn times, assertion (/J, s s ) on the acceptance set S for 

9 each integer i from n - 1 to 0 and add the result of each assertion (f h 

1 0 si) to the acceptance record set S 9 where m represents a number 

1 1 greater than 1 , and determine if the acceptance record set S includes 

12 (0, POLICY, R). 
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1 21. A trust management platform, comprising: 

2 an input port configured to receive a request, a policy 

3 assertion (/q, POLICY), and credential assertions (/J, £j), Js j w 

4 . j), each credential assertion comprising a credential function f t and a 

5 credential source sf, and 

6 a compliance checking unit coupled to said input port and 

7 configured to: 

8 a) initialize an acceptance record set S to {(A, A, R)}, 

9 where A represents a distinguished null string and R 

1 0 represents information corresponding with the request, 

1 1 b) run assertion (/J, j f ) on the acceptance set S for each 

12 integer / from n - 1 to 0 and add the result of each assertion (/-, 

1 3 jy) to the acceptance record set S, 

14 c) repeat step (b) mn times, where m represents a 

1 5 number greater than 1 , and 

16 d) determine if acceptance record set S includes an 

1 7 acceptance record (0, POLICY, R). 

1 22. A trust-management system, comprising: 

2 means for receiving a request to perform an action r and a set 

3 of assertions (fa POLICY), (/J, $ ,), . . . , (f n . 1? s n . ,); and 

4 means for proving that the request r is consistent with the set 

5 of assertions. 
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1 23. A medium storing instructions adapted to be executed by 

2 a processor to perform steps including: 

3 a) receiving a request r, a policy assertion (f Q , POLICY) 

4 associated with the request r, and n - 1 credential assertions (/j, . . 

5 . , (f n . !, . j), each credential assertion comprising a credential 

6 function f t and a credential source sf 9 

7 b) initializing an acceptance record set S to {(A, A, R)} 9 where 

8 A represents a distinguished null string and R represents the request r; 

9 c) running assertion (£, 5 f ) on the acceptance set S for each 

1 0 integer / from n - 1 to 0 and adding the result of each assertion (/J, s s ) 

1 1 to the acceptance record set S; 

12 d) repeating step (c) mn times, where m represents a number 

1 3 greater than 1 ; and 

14 e) determining whether the acceptance record set S includes 

15 (0, POLICY, R). 

1 24. A method of compliance checking in a trust-management 

2 system, comprising: 

3 a) receiving a request r, a policy assertion (f 0 , POLICY) 

4 associated with the request r, and n - 1 credential assertions (/j, s } ), . . 

5 . , (f n . j, s n . j), each credential assertion comprising a credential 

6 function f { and a credential source sf 9 

7 b) initializing an acceptance record set S to {(A, A, /?)}, where 

8 A represents a distinguished null string and R represents the request r; 

9 c) for each integer / from n - 1 to 0: 

1 0 running assertion (/J, s t ) against the acceptance set S 

1 1 and adding the result to the acceptance record set 5, 

12 determining if the acceptance record set includes (0, 

13 POLICY, R), and 
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14 if the acceptance record set includes (0, POLICY, /?), 

1 5 then stopping said method; and 

16 d) repeating step (c) mn times, where m represents a number 

17 greater than 1 . 

1 25. A method of compliance checking in a trust-management 

2 system, comprising: 

3 a) receiving credential assertions (/j, s^, . . . , (f n . j, s n . ,), 

4 each credential assertion comprising a credential function f x and a 

5 credential source sf, 

6 b) initializing an acceptance record set S to {(A, R) }, where A 

7 represents an empty portion of the acceptance record set S, and R 

8 represents a request; 

9 c) running assertion (/J, 57) on the acceptance set S for each 

10 integer / from n - 1 to 0 and adding the result of each assertion (/•, s x ) 

11 to the acceptance record set 5; 

12 d) repeating step (c) mn times, where m represents a number 

13 greater than 1. 



37 



SUBSTITUTE SHEET (RULE 26) 

Patent provided by Sughrue Mion, PLLC - http://www.sughrue.com 



WO 99/41878 



PCT/US99/0331 1 



1/2 



FIG. 1 



-A 



j = j + i 



( START ) 



RECEIVE REQUEST POUCY AND 
ASSERTIONS AND INITIALIZE 
ACCEPTANCE RECORD SET S 



I 



i = 1 



I 



RUN EACH ASSERTION AND 
ADD RESULT TO ACCEPTANCE 
RECORD SET S 



110 



120 



130 



OUTPUT 
REJECTION 




170 



OUTPUT 
ACCEPTANCE 



( END ) 



SUBSTITUTE SHEET (RULE 26) 



WO 99/41878 PCT/US99/0331 1 

2/2 

FIG. 2 



! TRUST-MANAGEMENT PLATFORM 1 




SUBSTITUTE SHEET (RULE 25) 



INTERNATIONAL SEARCH REPORT 



Intc onal Application No 

PCT/US 99/03311 



A. CLASSIFICATION OF SUBJECT MATTER 

IPC 6 H04L9/32 G06F12/14 G06F1/00 



According to International Patent Classification (IPC) or to both national classification and IPC 

B. FIELDS SEARCHED 

Minimum documentation searched (classification system followed by classification symbols) 

IPC 6 H04L G06F 



Documentation searched other than minimum documentation to the extent that such documents are included in the fields searched 



Electronic data base consulted during the international search (name of data base and, where practical, search terms used) 



C. DOCUMENTS CONSIDERED TO BE RELEVANT 



Category ° 


Citation of document, with indication, where appropriate, of the relevant passages 


Relevant to claim No. 


X 


BLAZE M ET AL: "DECENTRALIZED TRUST 


22 




MANAGEMENT" 






PROCEEDINGS OF THE 1996 IEEE SYMPOSIUM ON 






SECURITY AND PRIVACY, OAKLAND, CA., MAY 6 






- 8, 1996, 






no. SYMP. 17, 6 May 1996, pages 164-173, 






XP000634842 






INSTITUTE OF ELECTRICAL AND ELECTRONICS 






ENGINEERS 






cited In the application 






see page 166, right-hand column, line 30 - 






page 167, left-hand column, paragraph 1 




A 


see page 168, right-hand column, line 3 - 


1,14,21, 




page 169, left-hand column, line 33 


23-25 




-/-- 





Further documents are listed in the continuation of box C. 



Patent family members are listed in annex. 



0 Special categories of cited documents : 

"A* document defining the general state of the art which is not 
considered to be of particular relevance 

"E" earlier document but published on or after the international 
filing date 

"L" document which may throw doubts on priority claim(s) or 
which is cited to establish the publication date of another 
citation or other special reason (as specified) 

"O" document referring to an oral disclosure, use, exhibition or 
other means 

"P" document published prior to the international filing date but 
later than the priority date claimed 



"T" later document published after the International filing date 
or priority date and not in conflict with the application but 
cited to understand the principle or theory underlying the 
invention 

"X" document of particular relevance; the claimed invention 
cannot be considered novel or cannot be considered to 
involve an inventive step when the document is taken alone 

"Y" document of particular relevance; the claimed invention 

cannot be considered to involve an inventive step when the 
document is combined with one or more other such docu- 
ments, such combination being obvious to a person skilled 
in the art 

document member of the same patent family 



Date of the actual completion of the international search 

4 June 1999 


Date of mailing of the international search report 

17/06/1999 


Name and mailing address of the ISA 

European Patent Office. P B. 5818 Patentlaan 2 
NL - 2280 HV Rijswijk 
Tel. (+31-70) 340-2040. Tx. 31 651 epo nl, 
Fax: (+31-70) 340-3016 


Authorized officer 

Hoi per, G 



Fonn PCT7ISA/21 0 (second sheet) (July 1992) 



INTERNATIONAL SEARCH REPORT 



Inl tional Application No 

PCT/US 99/03311 



C(Contlnuation) DOCUMENTS CONSIDERED TO BE RELEVANT 



Category ' Citation ol document, with indication, where appropriate, of the relevant passages 



Relevant to claim No. 



p,x 



X 
X 



BLAZE M ET AL: "Compliance checking 1n 

the PollcyMaker trust management system" 

FINANCIAL CRYPTOGRAPHY. SECOND 

INTERNATIONAL CONFERENCE, FC'98 

PROCEEDINGS, FINANCIAL CRYPTOGRAPHY. 

SECOND INTERNATIONAL CONFERENCE, FC'98. 

PROCEEDINGS, ANGUILLA, 23-25 FEB. 1998, 

pages 254-274, XP002104976 

ISBN 3-540-64951-4, 1998, Berlin, Germany, 

Spr 1 nger-Ver 1 ag , Germany 

see page 260, line 15 - page 261, line 26 

EP 0 586 022 A (FISCHER) 9 March 1994 
see page 13, line 12 - page 16, line 44 

HANUSHEVSKY Ai "SECURITY IN THE IEEE MASS 
STORAGE SYSTEM REFERENCE MODEL" 
PUTTING ALL THAT DATA TO WORK, MONTEREY, 
APR. 26 - 29 1993 

no. SYMP. 12! 26 April 1993, pages 67-77, 

XP000379106 

COLEMAN S S 

see page 72, right-hand column, line 16 - 
page 73, right-hand column, line 7 

BLAZE M ET AL: "MANAGING TRUST IN AN 
INFORMATION-LABELING SYSTEM" 
EUROPEAN TRANSACTIONS ON 
TELECOMMUNICATIONS, 

vol. 8, no. 5, 1 September 1997, pages 
491-501, XP000720075 
see page 495, right-hand column, last 
paragraph - page 496, left-hand column, 
1 ine 6 



1-25 



22 
22 



1,20-22 



Form PCT/1SA/21 0 (continuation of second sheet) (July 1 992) 



INTERNATIONAL SEARCH REPORT 

Information on patent family members 



Patent document 
cited in search report 



Publication 
date 



EP 586022 



09-03-1994 



Inte 



onal Application No 

PCT/US 99/03311 



Patent family 
member(s) 



Publication 
date 



IK 




A 
n 


no-flA-IOOl 

ML V*r kJjl 


AT 
A 1 




T 
1 


1 C_1 1-1QQZ1 


AT 
A 1 


iOUOUO 


T 
1 


1 (v-ftA-1QQ7 


All 

Au 




D 
D 


1 J Ut l?3t 


All 

AU 




A 
A 


1J uy 


r a 
LA 


IUUU4UU 


A r 
A,t 


07-HQ— 1 GOO 

u/ uy iyyu 


Ut 


con 1 oc/ 1 


n 
V 




nc 


oyuioo*n 


T 

1 


uy uo lyyo 






n 
u 


d** u** iyy / 


nc 
Ut 


oyuju^oo 


T 

1 


OA— riA— 1 007 
co uo iyy/ 


UK 


OOOOO/ 


1 


n'j— n/i—1 00c 


EP 


0386867 


A 


12-09-1990 


ES 


2036978 


T 


01-01-1995 


ES 


2098651 


T 


01-05-1997 


GR 


93300050 


T 


30-06-1993 


JP 


2291043 


A 


30-11-1990 


US 


5214702 


A 


25-05-1993 



Foim PCT/isA/210 (patent family annex) (juif\a$crt provided by Sughrue Mion, PLLC - http://www.sughrue.com 



